CVE-2013-5018

Name of the Vulnerable Software and Affected Versions strongSwan versions 4.1.11 through 5.0.4 strongSwan versions prior to 5.1.0

Description The issue affects the strongSwan package in Gentoo Linux, potentially leading to breaches of confidentiality, integrity, and availability of protected information. Exploitation can occur remotely. Specifically, the is asn1 function does not properly validate the return value of the asn1 length function, allowing remote attackers to cause a denial of service via a malformed XAuth username, EAP identity, or PEM encoded file.

Recommendations For strongSwan versions 4.1.11 through 5.0.4, update to version 5.1.0 or later to resolve the issue. For strongSwan versions prior to 5.1.0, update to version 5.1.0 or later to resolve the issue. As a temporary workaround, consider restricting access to the is asn1 function and validating the input to the asn1 length function to minimize the risk of exploitation.